Hi David,
Thats an excellent catch!
The topology is not clear at all, according to the configuration:
!--- 172.18.124.167 is assigned by the DHCP server.
ip address outside dhcp
ip address inside 10.1.1.1 255.255.255.0
route outside 0.0.0.0 0.0.0.0 172.18.124.1 1
So we could conclude that the cloud in there is a SW connected to a Router that has the 172.18.124.1/24 IP address.
Both FW's point to the Router as the default-gateway. In the lab it worked that way, just replace the cloud with a SW and a Router.
Now, I would suggest you check on the following links instead, since 6.3 is not longer supported:
Configuring LAN-to-LAN VPNs
Configuring Remote Access VPN
HTH.
Portu.